$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.mft File: 34pOYRe8o2iUDWjphUeYuWZgndQ.mft (raw, json) Hash identifier: pedGac6na7gotyrlbJYM1DLtSD/P4//e8aS/toU/oQo= Subject key identifier: 95:AA:5F:07:2B:85:B7:30:6D:DC:4C:77:C9:35:7A:FF:D4:0D:26:C7 Authority key identifier: DF:8A:4E:61:17:BC:A3:68:94:0D:68:E9:85:47:98:B9:66:60:9D:D4 Certificate issuer: /CN=A91C8530/serialNumber=DF8A4E6117BCA368940D68E9854798B966609DD4 Certificate serial: 08D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34pOYRe8o2iUDWjphUeYuWZgndQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.mft Manifest number: 08CB Signing time: Fri 30 May 2025 20:41:23 +0000 Manifest this update: Fri 30 May 2025 20:41:22 +0000 Manifest next update: Fri 06 Jun 2025 20:41:22 +0000 Files and hashes: 1: 34pOYRe8o2iUDWjphUeYuWZgndQ.crl (hash: WquUzbZsIMh1JODZ/tP52083Snfav8ozo1mgQMfbXB8=) 2: 9BD30C5EB1E711EA86EFFD5EC4F9AE02.roa (hash: qrOVzHUnQpUjj2NXO2uI9c1Lmn26rV+B/0QYiSJpTNM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.crl rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34pOYRe8o2iUDWjphUeYuWZgndQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:41:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2257 (0x8d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8530, serialNumber=DF8A4E6117BCA368940D68E9854798B966609DD4 Validity Not Before: May 30 20:41:22 2025 GMT Not After : Jun 6 20:41:22 2025 GMT Subject: CN=683a17f3-dbef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:39:5a:70:f6:4e:80:b8:a0:dd:ea:e2:ad:d9: e6:df:b0:28:f6:03:45:16:51:6b:5c:cb:fc:26:65: 93:a6:34:08:bd:06:f2:55:ee:c4:e7:a0:8f:9c:9c: f8:e4:bd:da:de:3c:68:96:8a:d9:eb:62:7f:a9:9b: 05:0d:6a:b4:d2:e0:02:6e:d6:9a:2f:cc:bc:e7:30: 03:34:44:24:17:75:71:df:a5:e5:bf:ff:cb:fa:cd: 56:e6:a9:75:cd:3d:57:47:11:22:fc:1c:ea:a6:70: 75:94:66:64:a2:34:c5:18:88:ad:ce:50:43:00:a0: 5a:cb:dc:a7:c9:77:4c:41:92:16:9d:12:07:61:5b: 2a:b3:2d:d0:75:dd:98:8b:5b:be:95:7e:56:e9:41: 22:21:f8:8e:2b:fc:e1:9c:a8:29:30:f6:fa:b1:33: 22:de:65:06:4f:ca:a7:01:2e:f6:f7:1a:fb:5f:53: 2d:4e:78:76:65:64:0b:7a:ee:da:48:82:c2:2d:ac: 56:a6:7e:6c:06:8f:85:de:4f:dc:a5:c9:45:ff:53: 18:14:dc:e6:b6:9d:01:09:42:97:47:85:cf:7a:7c: 10:80:b2:a8:07:11:c7:83:76:4d:7f:48:80:d7:ce: f1:7a:e5:48:8b:20:a6:6b:25:a2:6c:ec:49:04:ca: 63:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:AA:5F:07:2B:85:B7:30:6D:DC:4C:77:C9:35:7A:FF:D4:0D:26:C7 X509v3 Authority Key Identifier: keyid:DF:8A:4E:61:17:BC:A3:68:94:0D:68:E9:85:47:98:B9:66:60:9D:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34pOYRe8o2iUDWjphUeYuWZgndQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:58:a3:81:f8:d7:79:8e:54:75:5f:00:57:be:fe:49:a9:b9: ce:d0:7f:20:d5:30:e8:c3:2d:d3:11:55:86:9d:0c:31:11:a0: c2:90:5b:03:5d:a7:a3:a3:a0:08:03:0d:f7:fc:11:89:87:3b: 6a:1c:64:6a:64:e0:f2:d9:14:ed:85:cc:2f:1e:64:2e:f6:aa: 5f:25:e3:4d:37:3f:96:02:5e:e1:fb:ac:c6:42:99:94:db:32: eb:a0:5d:03:df:e4:0e:ff:6a:87:cb:57:04:40:d9:4a:15:d0: dd:d2:1e:62:aa:bb:aa:2c:e7:ea:02:de:88:a2:ca:65:ce:8b: 84:08:24:6a:d7:fe:72:fe:02:e2:55:1d:8e:2d:df:c0:b7:97: c3:60:02:41:c1:5b:b0:fc:fa:65:3a:ee:5b:5b:2b:0f:48:05: 03:5b:5e:23:45:e7:a8:8d:cc:45:81:68:c4:8f:ac:8c:9b:c3: 29:52:3a:f6:f4:78:c1:a6:f9:b9:49:d3:08:96:7f:a8:d7:bd: 55:09:af:36:16:44:a9:d6:c4:c1:2e:ed:52:07:79:0d:2a:61: 39:68:18:2f:5c:fc:29:7a:e4:fb:4b:d4:46:e9:35:44:d9:c0: 85:54:b0:84:97:73:a5:07:72:a0:70:79:bd:0a:a6:0b:1e:a1: 92:b6:78:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzg1MzAxMTAvBgNVBAUTKERGOEE0RTYxMTdCQ0EzNjg5NDBENjhFOTg1NDc5OEI5 NjY2MDlERDQwHhcNMjUwNTMwMjA0MTIyWhcNMjUwNjA2MjA0MTIyWjAYMRYwFAYD VQQDEw02ODNhMTdmMy1kYmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArzlacPZOgLig3erirdnm37Ao9gNFFlFrXMv8JmWTpjQIvQbyVe7E56CPnJz4 5L3a3jxolorZ62J/qZsFDWq00uACbtaaL8y85zADNEQkF3Vx36Xlv//L+s1W5ql1 zT1XRxEi/BzqpnB1lGZkojTFGIitzlBDAKBay9ynyXdMQZIWnRIHYVsqsy3Qdd2Y i1u+lX5W6UEiIfiOK/zhnKgpMPb6sTMi3mUGT8qnAS729xr7X1MtTnh2ZWQLeu7a SILCLaxWpn5sBo+F3k/cpclF/1MYFNzmtp0BCUKXR4XPenwQgLKoBxHHg3ZNf0iA 187xeuVIiyCmayWibOxJBMpjtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJWqXwcr hbcwbdxMd8k1ev/UDSbHMB8GA1UdIwQYMBaAFN+KTmEXvKNolA1o6YVHmLlmYJ3U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODUzMC8xOEY2NkQ4NkIx RTYxMUVBQUE5MTMzNUFDNEY5QUUwMi8zNHBPWVJlOG8yaVVEV2pwaFVlWXVXWmdu ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM0cE9ZUmU4bzJpVURXanBoVWVZdVdaZ25kUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD ODUzMC8xOEY2NkQ4NkIxRTYxMUVBQUE5MTMzNUFDNEY5QUUwMi8zNHBPWVJlOG8y aVVEV2pwaFVlWXVXWmduZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+WKOB+Nd5jlR1XwBXvv5JqbnO0H8g1TDowy3TEVWGnQwxEaDCkFsD Xaejo6AIAw33/BGJhztqHGRqZODy2RTthcwvHmQu9qpfJeNNNz+WAl7h+6zGQpmU 2zLroF0D3+QO/2qHy1cEQNlKFdDd0h5iqruqLOfqAt6IosplzouECCRq1/5y/gLi VR2OLd/At5fDYAJBwVuw/PplOu5bWysPSAUDW14jReeojcxFgWjEj6yMm8MpUjr2 9HjBpvm5SdMIln+o171VCa82FkSp1sTBLu1SB3kNKmE5aBgvXPwpeuT7S9RG6TVE 2cCFVLCEl3OlB3KgcHm9CqYLHqGStnhL -----END CERTIFICATE-----Generated at Sat May 31 17:00:24 2025 by rpki-client